Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/JEGkFyjuAgupq4xrNAI45MD-sAE.roa
File: JEGkFyjuAgupq4xrNAI45MD-sAE.roa (raw, json)
Hash identifier: kcb2Lq4cSQAAmbfPUqQEXAdsFw/IAgy5TzpypK8jlg0=
Subject key identifier: 24:41:A4:17:28:EE:02:0B:A9:AB:8C:6B:34:02:38:E4:C0:FE:B0:01
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 13C4C64F
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/JEGkFyjuAgupq4xrNAI45MD-sAE.roa
Signing time: Mon 18 Apr 2022 10:54:49 +0000
ROA not before: Mon 18 Apr 2022 10:54:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 149690
IP address blocks: 2a0e:97c0:374::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 331662927 (0x13c4c64f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Apr 18 10:54:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2441a41728ee020ba9ab8c6b340238e4c0feb001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:47:17:33:53:5f:ad:99:2d:eb:01:3f:66:26:
94:0d:4f:98:c5:de:be:61:11:6a:49:f5:df:30:67:
34:86:47:4f:b9:8f:0e:87:cc:d0:4b:c1:2b:40:34:
4a:a6:7d:3b:6f:b5:41:e1:03:1a:8c:d2:09:a3:63:
85:78:45:25:26:ba:38:65:73:53:05:3d:aa:37:e0:
2c:b5:9d:dd:1f:7f:96:1c:55:db:3d:b1:58:2f:f7:
9b:eb:ee:af:58:81:3a:73:4b:eb:8e:57:d0:2b:95:
32:b0:3b:5c:98:c9:8f:52:80:84:b9:74:dd:44:93:
6c:74:5d:bb:09:09:e2:5d:f5:44:10:e5:59:61:10:
fd:04:4e:82:4c:91:db:5c:3a:fb:a9:5e:df:fe:03:
bb:7a:86:31:b6:82:e6:52:4d:42:e9:41:e3:74:81:
22:d6:31:6f:05:34:cb:ed:db:94:47:17:89:fb:50:
a2:83:19:66:fe:14:bb:40:18:3d:ef:7e:34:8c:36:
fa:82:2e:c6:65:ea:b1:5b:0a:df:e8:93:1c:9d:3c:
14:65:7f:55:97:4f:1c:d5:3b:2e:f0:69:f7:3f:4d:
4d:d1:58:4a:62:ca:28:02:a4:ed:d8:f7:16:a2:3e:
29:d9:4f:d0:22:52:c7:82:b5:e2:75:c4:bc:9b:57:
e6:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:41:A4:17:28:EE:02:0B:A9:AB:8C:6B:34:02:38:E4:C0:FE:B0:01
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/JEGkFyjuAgupq4xrNAI45MD-sAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:374::/48
Signature Algorithm: sha256WithRSAEncryption
a1:8d:ac:a2:db:9d:a4:03:fc:d8:f1:73:e2:39:c5:ae:3b:ed:
21:b4:b1:1c:e9:1d:1f:80:23:4d:2e:f0:69:6f:d4:6f:46:dc:
79:e3:ce:a4:2c:1e:f0:34:b5:27:91:2d:c8:00:13:5f:84:8d:
62:33:da:da:b4:c8:3d:ae:48:d8:16:56:d7:f2:eb:2f:77:86:
5e:81:e3:3a:e0:33:7b:e0:1c:aa:43:71:f2:dd:ae:c5:a4:9a:
47:f3:58:5f:8f:56:07:78:3c:b1:47:6c:3c:3c:d3:2b:ee:64:
cb:81:32:a0:51:49:0a:da:ed:ba:e1:03:87:72:0d:2d:b6:5c:
fe:dc:69:a1:9c:4c:ab:32:f5:2d:3f:e3:44:3f:ce:5b:86:c9:
aa:2a:b7:b7:2f:54:f6:26:be:72:c9:fe:dc:c1:c0:bd:91:54:
d8:82:35:48:59:5d:0f:61:c4:08:8b:f9:16:94:3f:73:f9:10:
b7:e3:6b:de:65:1b:e0:98:f0:fc:da:43:b3:e1:fa:76:2a:f6:
c1:45:b4:13:42:b5:5e:76:44:e4:00:01:67:64:a7:21:af:0a:
bf:d9:d7:65:f0:2b:06:ae:75:b8:a0:29:37:01:70:24:7b:d6:
71:d8:39:d1:0c:8b:cb:1e:79:fd:7a:54:7d:f6:2d:1c:8d:86:
ab:84:c3:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:15 2023 by rpki-client on console-fra.rpki-client.org